CIS GitHub Benchmark v1.0.0
Profile Applicability: Level 1 Description: Automated vulnerability scanning tools must be deployed to analyze all open-source packages used within the s...
Thu, 29 May, 2025 at 5:27 AM
Profile Applicability: Level 1 Description: Automated security scanning tools must be integrated into the software development lifecycle to analyze sourc...
Thu, 29 May, 2025 at 5:30 AM
Profile Applicability: Level 1 Description: Automated scanners must be deployed to analyze CI pipeline configuration files and instructions to detect sec...
Wed, 28 May, 2025 at 9:37 AM
Profile Applicability: Level 1 Description: Open Git branches must be synchronized with the latest changes from the target base branch (e.g., main or mas...
Tue, 27 May, 2025 at 2:50 AM
Profile Applicability: Level 1 Description: All comments and discussions raised during the code review process must be addressed and marked as resolved b...
Tue, 27 May, 2025 at 2:57 AM
Profile Applicability: Level 1 Description: All new code changes must be submitted as cryptographically signed commits, and these signatures must be veri...
Tue, 27 May, 2025 at 3:02 AM
Profile Applicability: Level 1 Description: Require that all commits merged into the main branch follow a linear history without merge commits, typically...
Tue, 27 May, 2025 at 3:08 AM
Profile Applicability: Level 1 Description: Branch protection rules, such as required reviews, status checks, and restrictions on force pushes or delet...
Tue, 27 May, 2025 at 3:23 AM
Profile Applicability: Level 1 Description: Access to push new code or merge changes into protected branches must be limited to designated individuals or...
Tue, 27 May, 2025 at 3:27 AM
Profile Applicability: Level 1 Description: Force pushing code to branches, especially protected or main branches, must be explicitly denied to prevent o...
Tue, 27 May, 2025 at 3:43 AM